Deprecated - Security advisories for contributed projects

This forum is deprecated — view current Drupal contributed projects security advisories

SA-CONTRIB-2013-071 - Flag - Cross Site Scripting

By Drupal Security Team on 28 Aug 2013 at 17:07 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-071
Project: Flag (third-party module)
Version: 7.x
Date: 2013-August-28
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-070 - Zen - Cross Site Scripting

By Drupal Security Team on 21 Aug 2013 at 19:17 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-070
Project: Zen (third-party module)
Version: 7.x
Date: 2013-August-21
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-069 - Password Policy - XSS

By Drupal Security Team on 14 Aug 2013 at 18:30 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-069
Project: Password policy (third-party module)
Version: 6.x, 7.x
Date: 2013-August-14
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Cross Site Scripting

SA-CONTRIB-2013-068 - Entity API - Access Bypass

By Drupal Security Team on 14 Aug 2013 at 15:24 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-068
Project: Entity API (third-party module)
Version: 7.x
Date: 2013-August-14
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Access bypass

SA-CONTRIB-2013-067 - BOTCHA - Information Disclosure (potential Privilege Escalation)

By Drupal Security Team on 14 Aug 2013 at 13:07 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-067
Project: BOTCHA Spam Prevention (third-party module)
Version: 7.x
Date: 2013-August-14
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Information Disclosure

SA-CONTRIB-2013-066 - Monster Menus - Multiple Vulnerabilities

By Drupal Security Team on 7 Aug 2013 at 19:41 UTC

Advisory ID: DRUPAL-SA-CONTRIB-2013-066
Project: Monster Menus (third-party module)
Version: 6.x, 7.x
Date: 2013-August-07
Security risk: Moderately critical
Exploitable from: Remote
Vulnerability: Access bypass

Pages

Subscribe with RSS